Adresse
Form der ArbeitDescription
The Leidos Defense group has a career opportunity for an Information Systems Security Manager (ISSM) in Stuttgart, Germany.
PROGRAM SUMMARY:
This program provides critical Communications and Information Technology Services to support U.S. Africa Command Task Force, and associated staff elements and organizations. It provides our war fighters support in their mission to keep threats and vulnerabilities as low as possible by ensuring that their computer network is stable, undisrupted, and secure and will require some OCONUS travel.
This position is part of a surge and will last until May 2024. It may be extended if possible.
PRIMARY RESPONSIBILITIES:
o Apply continuous monitoring techniques to evaluate system security posture.
o Compile information and support required for cyber evaluations, inspections, assessments, and reporting tasks, as directed, such as the Joint Staff Cybersecurity Scorecard.
o Conduct reviews of Information Systems to ensure security compliance.
o Coordinate with internal and external stakeholders to obtain and organize required documentation.
o Develop A&A documentation for Government approval, as directed, IAW DoD and CCMD Policies
o Develop CCMD cyber security policies for Government approval.
o Ensure appropriate operational security posture is maintained.
o Ensure emergent systems are compliant during engineering and integration, prior to transition into operations and maintenance.
o Ensure required compliance reporting is published in the authoritative systems of record IAW DoD and CCMD Policies.
o Evaluate and implement all applicable DoD orders and directives
o Evaluate, from a security perspective, new, replacement, trial, or test equipment or software being brought into authorization boundaries.
o If compliance cannot be met on any order or directive, provide a Plan of Action and Milestones (POA&M) to the Government for approval within the directed timelines.
o Implement and support all phases of Risk Management Framework (RMF).
o Maintain scanning results and develop vulnerability trend reports IAW DoD and CCMD procedures.
o Manage and maintain the RMF Assessment and Authorization (A&A) program
o Obtain, maintain, and manage A&A documentation for Cross-Domain Solutions for connection authorization
o Obtain, maintain, and manage A&A documentation for External Systems (for example, Program-Managed Systems) for connection authorization via cybersecurity reciprocity.
o Perform and document Risk Assessments of findings (for example, vulnerabilities, non-compliant areas) identified through Continuous Monitoring Activities. Recommend courses of action for addressing all findings.
o Perform and maintain system registrations IAW DoD and CCMD Policy. These registrations include, but are not limited to, those in the Ports, Protocols, and Services Management (PPSM) database, Systems/Network Approval
o Process (SNAP), DoD NIPR DMZ Whitelist, and DoD IT Portfolio Repository (DITPR).
o Perform response actions to instances of other security incidents, for example, Unauthorized Disclosures of Classified Information (UDCI), Cross-Domain Violations, and Unauthorized Activity, as directed, IAW DoD and CCMD Procedures.
o Perform Security Control Assessments of software and hardware being considered for the command’s Approved Product List.
o Perform technical writing to develop, update, organize, maintain, and track required RMF documentation. Examples include technical documents, templates, and support agreements, exceptions to policy, diagrams, and illustrations.
o Track the implementation status of recommended/required actions derived from exercises and inspections, as directed.
o Work with Designated Authorizing Official (DAO) to ensure systems obtain and maintain accreditation.
BASIC QUALIFICATIONS:
•BA/BS + 6 years recent specialized, or a major cert +8 years recent specialized, or 12 years of recent specialized experience.
•Must hold current DOD 8570 IAM III certification (CISM, CISSP, GSLC, CCISO).
•Demonstrates knowledge of DoD IT RMF, USCYBERCOM, and JFHQ-DoDIN.
•Able to work in dynamic fast paced environments that require team interaction and coordination of efforts.
•Experienced in interfacing with both client managers and system users.
•Must hold an active DoD Top Secret Clearance and be eligible to obtain TS/SCI clearance.
PREFERRED QUALIFICATIONS:
•IASAE III level Certification (CISSP-ISSAP or CISSP-ISSEP baseline certificates).
•Additional certs: CCNA, RHCSA, Microsoft Azure Certification (Server Administration).
•Proficiency with Microsoft SCCM and/or other automatic reporting tools.
•Proficiency with PowerBI.
•Experience managing asset accuracy to Critical Success Factors (CSF).
Why join us? Perks include:
• Paid relocation to/from OCONUS location
• Overseas living allowance(s) - HOLA and COLA
• Foreign Earned Income Tax Exemption
• Benefits package including medical, dental, vision insurance; paid time off; 401k with company match; etc.
• Base access (Exchange, dining, post office, commissary access, etc.)
• Thriving Expat Community to discover Germany and Europe and more!
CITS3
Pay Range:
Pay Range $101,400.00 - $183,300.00The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.
Original Posting Date:
01/02/2024While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.
About Leidos
Leidos is a Fortune 500® technology, engineering, and science solutions and services leader working to solve the world’s toughest challenges in the defense, intelligence, civil, and health markets. The company’s 47,000 employees support vital missions for government and commercial customers. Headquartered in Reston, Virginia, Leidos reported annual revenues of approximately $14.4 billion for the fiscal year ended December 30, 2022. For more information, visit www.Leidos.com.
Pay and Benefits
Pay and benefits are fundamental to any career decision. That's why we craft compensation packages that reflect the importance of the work we do for our customers. Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement. More details are available here.
Securing Your Data
Beware of fake employment opportunities using Leidos’ name. Leidos will never ask you to provide payment-related information during any part of the employment application process (i.e., ask you for money), nor will Leidos ever advance money as part of the hiring process (i.e., send you a check or money order before doing any work). Further, Leidos will only communicate with you through emails that are generated by the Leidos.com automated system – never from free commercial services (e.g., Gmail, Yahoo, Hotmail) or via WhatsApp, Telegram, etc. If you received an email purporting to be from Leidos that asks for payment-related information or any other personal information (e.g., about you or your previous employer), and you are concerned about its legitimacy, please make us aware immediately by emailing us at [email protected].
If you believe you are the victim of a scam, contact your local law enforcement and report the incident to the U.S. Federal Trade Commission.
Commitment to Diversity
All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.
